Web Exploitation Arsenal v1.0 A comprehensive, modular web application security testing framework with a built-in GUI, CLI exploit framework, and a...
CVE-2026-38751 — OpenSTAManager Module Upload RCE Authenticated RCE via unvalidated ZIP upload in the module update endpoint. Affected: OpenSTAMana...
Cudy LT400 — Authenticated Root OS Command Injection in luci-app-gcom SMS "send test" Class: CWE-78 — OS Command Injection Impact: Arbitrary comman...
OpenSMTPD 원격 명령 실행 취약점 CVE-2020-7247 개요 OpenSMTPD는 Unix 계열 운영체제에서 사용되는 SMTP 서버 프로그램이다. BSD, macOS, GNU/Linux 등에서...
react2shell-exploit React2Shell: CVE-2025-55182 POST / HTTP/1.1 Host: localhost:3000 User-Agent: Mozilla/5.0 Windows NT 10.0; Win64; x64 AppleWebKi...
DirtyClone Exploit Framework CVE-2026-46331 — Linux Kernel Local Privilege Escalation TC pedit + IPsec TEE Page Cache Corruption · Affected kernels...
XFinder External Attack Surface Management EASM — a lightweight, production-ready Python CLI that continuously discovers, monitors, enriches, and t...
CVE-2026-41179 — rclone RC API Unauthenticated RCE ⚠️ EDUCATIONAL PURPOSES ONLY This repository is intended strictly for security research, educati...
WRAITH Offensive Security Framework — an all-in-one, menu-driven recon & exploitation toolkit for Linux. ⚠ For authorized security testing only. Ev...
CVE-2026-41940 ⚠ This tool is created solely for educational or bug bounty purpose only. Unauthorized use outside of controlled environments is str...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
